The New York State Department of Financial Services is the latest regulator to issue a report on the cybersecurity practices of financial institutions.  In its newly published 2013-2014 survey of 43 health, property, casualty and life insurance providers, the DFS assessed the companies’ cybersecurity frameworks, budgets, and corporate governance, as well as the frequency, nature, cost of, and response to breaches.  DFS found that all institutions surveyed used anti-virus software, among other security technologies, and nearly all providers had information security frameworks in place and believed they were adequately staffed for cybersecurity.  However, DFS expressed concern that only 14% of CEOs received monthly information security briefings, and that not all respondents audited their third-party service providers or participated in information-sharing organizations.